MiSec Southfield Meetup November 10th 2016

This month’s MiSec meetup will be kicking off #misec RuCTFE 2016!

If you haven’t been out to a #misec RuCTFE in previous years, take a look at the details here.

We’ll be hearing lightning talks from CTF newbies and veterans alike, sharing valuable nuggets of wisdom for first timers and seasoned “/^\w{31}=$/” finders.

Topics covered:

Wireshark and other tools
Code Reversing/Analysis
Review of past challenges/services

from awesome speakers such as:

@InfoSystir
@Nullspace
@taco_pirate
@BrettAHansen
and more!

Thursday, November 10th, at 7 pm
One Towne Square
7th Floor, Suite 700
Southfield, MI 48076

MiSec Lansing Meetup November 9th 2016

Title: Lightning Talks!

We will be having a round of Lightning Talks at the next Lansing MiSec meetup! Lightning talks are 10 to 15 min presentations on a variety of Security related topics. We will have the following speakers and topics:

Securing The Coffee Shops by Sam Bradstreet
Fun with Memory Forensics by Kyle Andrus
Evading DLP – Jedidiah Knopf
5 hacks in 15 Minutes by James Green

Have a Lightning Talk you want to try out? Let us know and we can add you to the list!

DATE & LOCATION:
Wednesday, November 9th, at 7 pm
TEKsystems
300 S Washington Sq, Suite 430
Lansing, MI 48933

MiSec Jackson Meetup November 8th 2016

Talk Title:
The Tale of the Overnight CSO

Speaker:
Christian Kopacsi

Summary:
It started out with a phone call from the boss, “Hey, Do you want to be the CSO for the State of Michigan”? Little did I know that a three letter response was about to transform my life for the next 12 months…

BIO:
Mr. Kopacsi, Cyber Security Incident Response Team Lead at Consumers Energy has over 20 years’ experience in Information Security. He received his bachelor’s degree from Davenport University in Information Assurance and his master’s degree from Fort Hays State University in Information Security Management.
Prior to joining Consumer’s Energy, Christian was the AVP, IT Security and Architecture at Chemical Bank. Previous to this Christian held various positions in Information security in the Healthcare and financial industries.
In addition Christian has been an adjunct professor at Walsh College and Davenport University teaching in the areas of Information Security and Digital Forensics.
In his spare time Christian enjoys reading, watching movies and home improvement projects. He currently resides in Lansing, MI with his wife and two dogs.

Please come in person since this talk will not be streamed or recorded.

Tuesday, November 8th, at 7 pm
Consumers Energy
One Energy Plaza`
Jackson, MI 49201

Please use the Francis Street parking deck.

If you have trouble getting into the building please PM @chaoticflaws via twitter.

MiSec Southfield Meetup October 13th 2016

Derek Thomas will be presenting Determining Normal: Baselining with Security Log and Event Data.

Bio:
Derek is a security consultant focused on log management, threat detection, and security monitoring. Derek enjoys developing use cases, watching logs like an operator in The Matrix, and looking for interesting ways to detect post exploitation activity. He is a family man that is also actively involved in the Michigan Security (#MiSec) community.

Abstract:
Take a look at almost every log management best practice guide and you will find a bullet point for determining “normal” activity or analyzing trends. These guides, and most log management best practices in general, lack the details for practically determining what is “normal” and how to investigate abnormal activity. This presentation intends to outline practical strategies for determining “normal” activity using baseline analysis with logs and security events. Topics will include overview of baselines and the necessary statistics, determining what to baseline with threat modeling, developing the baseline, reviewing the anomalous data, and tuning.

Thursday, October 13th, at 7 pm
One Towne Square
7th Floor, Suite 700
Southfield, MI 48076

MiSec Lansing Meetup October 12th 2016

Title:
SOC functions and design considerations

SPEAKER:
Don Warnecke has spent over 20 years planning, designing, implementing, and operating networks and systems within Department of Defense and utility networks. Don has spent most of the last 15 years working in NOCs and SOCs, or proposing security solutions for clients. He currently is focused on securing and defending sensitive network environments for a Midwestern utility. He holds several industry certifications including CISSP and GCIH. He also holds a Master of Arts in Organizational Management.

DESCRIPTION:
What is a Security Operations Center? In what ways is it distinct from SecOps, CSIRT, and SIC teams. When searching for an answer, there seems to be little agreement on what the functions of a SOC are. How do those functions get laid out in an effective organization of human effort? Join Don Warnecke in untangling the mess and discussing what functions belong in a modern SOC. We will also briefly discuss organizational factors that impact the outcomes.

DATE & (NEW) LOCATION:
Wednesday, October 12th, at 7 pm
TEKsystems
300 S Washington Sq, Suite 430
Lansing, MI 48933

MiSec Jackson Meetup October 11th 2016

Special Agent Benjamin Simon will be presenting on “FBI and Cyber Security”!

This talk will cover an overview of the FBI Cyber Security Program.

Please come in person since this talk will not be streamed or recorded.

Tuesday, October 11th, at 7 pm
Consumers Energy
One Energy Plaza`
Jackson, MI 49201

Please use the Francis Street parking deck.

MiSec Southfield Meetup Sept 15th 2016

Kristoffer Marshall presenting: Phishing your Coworkers ie. How to be a troll and get paid for it.

A presentation enhanced greatly with a numerous amount of animated GIFs, because I just found out that I can add animated GIFs to this presentation, and that’s pretty awesome. Also Phishing for lulz.

Kristoffer Marshall (@CrunkComputing) is a cyber defense engineer for a mid-sized managed services provider. He has experience being a Linux admin, email admin, and a developer, and maintains a slew of useless websites just for fun. He has spoken at Penguicon, MCRCon, and will also be speaking at GrrCON this year. If you see him in the wild, by all means, please have a beer with him.

The lightening talk is Project Falcon – Device Blacklist Alert System,
and will be presented by Annie Rosentreter, Caleb Stade, Chelsea Thomas, and Jake Layher.

Thursday, September 15th, at 7 pm
One Towne Square
7th Floor, Suite 700
Southfield, MI 48076

MiSec Jackson Meetup September 13th 2016

Title: Exploiting Linux Binaries 101

Description: This talk is intended for those familiar with basic programming concepts, and will detail how to identify and exploit a common vulnerability present in an example program, in the presence of a variety of mitigations (e.g. ASLR).

Speaker Bio: After ten years of wandering around aimlessly, Daniel was entranced by his Wife and landed here in Jackson. Daniel is an analyst at Consumers Energy, who happily rips apart malware for both good and evil. When Daniel isn’t busy working on his farm, he spends his time taming kittens for a local charity. His favorite Winter sport is nopsledding and Summer sport, pinning the shellcode on the virus. You can only recently find him gassing away at a local bar on a Tuesday night. In 2016, Daniel anointed the first ever scrumlord with the sacred octocat funko. Daniel is currently writing and publishing his own work which can be installed with apt-get.

Tuesday, September 13th, at 7 pm
Consumers Energy
One Energy Plaza`
Jackson, MI 49201

Please use the Francis Street parking deck.

MiSec Lansing Meetup September 14th 2016

This is the first official meeting in Lansing. The meetings will be hosted by TEKsystems. We are planning to stream the talks online. Keep up to date on Twitter and feel free to reach out for more information. Since this is a new location, we aren’t sure how many people will be attending. To ensure we have enough space, please RSVP here using eventbrite.

TITLE:
Learning Security The Hard Way

SPEAKER:
Benjamin Carroll (@taco_pirate) is an employee at a large utility in Michigan. Starting from modding Xbox’s at a young age, building websites in his free time, and hacking people for fun, he finally found himself in cyber security. He is now an advocate for cyber security education, as well as educating himself in every aspect of information security.

DESCRIPTION:
Are you a student in the cyber security field and often find yourself wondering what that transition into industry will be like? Do you feel prepared to take on the challenges of a real blue team? The answer is no, you aren’t; and I’ll tell you why. As well as what you need to do to prepare yourself.

DATE & (NEW) LOCATION:
Wednesday, September 14th, at 7 pm
TEKsystems
300 S Washington Sq, Suite 430
Lansing, MI 48933

Parking:
There are meters on S Washington Sq., an open parking lot on W Washtenaw St. and multiple parking ramps on S Capitol Ave.

Building entrance:
The main entrance to the building is actually on W Washtenaw St. in between the Sarnie Shoppe and The Runway. Once inside, go straight ahead where there are two elevators. Go up to the 4th floor. Upon exiting the elevators, go left and left around the corner. The TEK office is visible once going around the corner.

MiSec Jackson Meetup August 9th 2016

TITLE:
Injecting Security into the SDLC

SPEAKER:
Mark Good

DESCRIPTION:
Approximately 86% of all attacks are against application weaknesses. Yet less than 35% of security spending is on application design and development.
Without the inclusion of security during the requirements, design, build, and verification phases of development, security vulnerabilities can be inadvertently or maliciously introduced into the production environment. In this talk you will learn why it’s important to include security throughout the SDLC, what activities should be performed, and where in the SDLC to perform these activities.

Tuesday, August 9th, at 7 pm
Consumers Energy
One Energy Plaza`
Jackson, MI 49201

Please use the Francis Street parking deck.

Return top

About MichSec.org

We are a collective of Michigan based information security professionals (or maybe just people interested in security) looking to share knowledge and make the world a safer place.